EUVD-2025-21831

Malicious code in bioql PyPI...

EUVD-2025-21311

Malicious code in bioql PyPI...

EUVD-2025-20780

Malicious code in bioql PyPI...

EUVD-2024-27883

Malicious code in bioql PyPI...

EUVD-2025-12442

Malicious code in bioql PyPI...

CVE-2025-7833 code-projects Church Donation System giving.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Church Donation System 1.0. This issue affects some unknown processing of the file /members/giving.php. The manipulation of the argument Amount leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-7628

CVE-2025-7628 affects YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. The vulnerability is in the deleteFile function at /deleteFile where manipulat ing the fileName parameter enables path traversal. It is described as exploitable remotely and has public exploit di...

CVE-2025-6420

CVE-2025-6420 affects code-projects Simple Online Hotel Reservation System 1.0, with SQL injection in /admin/add_room.php via the room_type parameter. Exploitation can be remote; exploits have been disclosed publicly. Several connected sources confirm the issue across NVD, CNVD, CIRCL, and vendor...

CVE-2006-4084

Unspecified vulnerability in phpAutoMembersArea phpAMA before 3.2.4 has unknown impact and attack vectors, related to "a potential security exploit which is critical."...

CVE-2025-3976

The CVE-2025-3976 entry affects PHPGurukul COVID19 Testing Management System v1.0, specifically the /new-user-testing.php endpoint. The vulnerability is an SQL injection caused by manipulation of the mobilenumber parameter, exploitable remotely. Multiple connected sources corroborate the affected...

CVE-2025-3324 godcheese/code-projects Nimrod FileRestController.java unrestricted upload

A vulnerability, which was classified as critical, has been found in godcheese/code-projects Nimrod 0.8. Affected by this issue is some unknown functionality of the file FileRestController.java. The manipulation of the argument File leads to unrestricted upload. The attack may be launched remotel...

CVE-2025-2392 code-projects Online Class and Exam Scheduling System activate.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Online Class and Exam Scheduling System 1.0. This issue affects some unknown processing of the file /pages/activate.php. The manipulation of the argument id leads to sql injection. The attack may be initiated...

CVE-2024-3376

A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. This affects an unknown part of the file config.php. The manipulation of the argument url leads to execution after redirect. It is possible to initiate the attack remotely. The explo...

MGASA-2024-0134 Updated upx packages fix security vulnerability

A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects the function getne64 of the file bele.h. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this...